Overview

overview

7

Static

static

3

af14f590c4...18.exe

windows7-x64

7

af14f590c4...18.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    af14f590c4efd8d19614dd876ef44111b1bde35a3aea3d92c421e5c9e0bd6218

  • Size

    3.1MB

  • Sample

    240523-cbb7dahd8z

  • MD5

    96551111c346b37a3cdc7ddff8dd496b

  • SHA1

    a4323caccea8ed1f7ecd1c8b5e33cb6a3d8d5851

  • SHA256

    af14f590c4efd8d19614dd876ef44111b1bde35a3aea3d92c421e5c9e0bd6218

  • SHA512

    9b249738baafccfa098b61dbd18c3f8c1d35762965a3f7f649a361705fd1eb2cf8667a4e54d31fbfafe09a2b1b56822fb6c82e41adc426ad89ba564c398a51b9

  • SSDEEP

    49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBxB/bSqz8b6LNXJqI:sxX7QnxrloE5dpUpabVz8eLFc

Score
7/10
persistencespywarestealer

Malware Config

Targets

    • Target

      af14f590c4efd8d19614dd876ef44111b1bde35a3aea3d92c421e5c9e0bd6218

    • Size

      3.1MB

    • MD5

      96551111c346b37a3cdc7ddff8dd496b

    • SHA1

      a4323caccea8ed1f7ecd1c8b5e33cb6a3d8d5851

    • SHA256

      af14f590c4efd8d19614dd876ef44111b1bde35a3aea3d92c421e5c9e0bd6218

    • SHA512

      9b249738baafccfa098b61dbd18c3f8c1d35762965a3f7f649a361705fd1eb2cf8667a4e54d31fbfafe09a2b1b56822fb6c82e41adc426ad89ba564c398a51b9

    • SSDEEP

      49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBxB/bSqz8b6LNXJqI:sxX7QnxrloE5dpUpabVz8eLFc

    Score
    7/10
    persistencespywarestealer

    • Drops startup file

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • Adds Run key to start application

      persistence
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks